$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f26b7cb2-287e-42bd-b79f-1e3b4f46df77.roa File: f26b7cb2-287e-42bd-b79f-1e3b4f46df77.roa (raw, json) Hash identifier: gFPmgeDM5f0a2/gufp4lMBCwHSReS0vs1IV82jzRVfI= Subject key identifier: DE:40:F8:FD:4B:3C:C7:C5:02:6B:78:2D:E8:D7:19:57:63:FC:86:50 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2CAF44F64711E56AA5FB28D50CD8D5C049E1A82D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f26b7cb2-287e-42bd-b79f-1e3b4f46df77.roa Signing time: Wed 29 Jan 2025 00:00:00 +0000 ROA not before: Wed 29 Jan 2025 00:00:00 +0000 ROA not after: Wed 05 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 199.63.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:af:44:f6:47:11:e5:6a:a5:fb:28:d5:0c:d8:d5:c0:49:e1:a8:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jan 29 00:00:00 2025 GMT Not After : Mar 5 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:92:bd:b2:68:a3:d7:55:6e:a8:19:6e:55:df: 2d:83:fd:92:3c:0c:60:e1:a9:09:ac:49:fe:2f:1c: 90:22:92:05:f1:ab:6f:ce:63:1c:ca:4f:4b:83:70: c5:be:ee:cb:db:d2:90:99:d0:57:7e:cc:52:4a:bc: 0a:d4:35:ae:3e:6d:b7:83:51:f9:67:54:cf:db:6a: 39:29:01:50:bb:c5:59:68:af:cf:48:a0:ca:ab:23: 2b:47:0f:ca:6b:bc:d7:07:9c:73:34:4d:25:bf:63: 2a:c5:19:be:ab:3f:d2:89:97:fa:f3:54:2e:c4:d0: 66:3c:bc:eb:e0:bc:f1:85:e3:ab:50:06:68:cc:46: 89:28:6b:8f:b2:7d:f6:e2:0d:1b:0f:ce:67:4e:70: 64:27:3c:34:2e:93:a2:78:9f:44:9c:fb:38:17:31: b7:bd:a6:b5:02:c8:bb:ba:9d:34:c7:a5:cc:af:e6: e3:f9:72:93:38:72:0d:bf:ad:f4:96:07:a1:5b:c0: 6b:16:93:e7:c1:5c:2c:ce:ad:86:d3:84:cb:0c:ab: 44:b9:96:53:61:97:7f:c8:08:f7:c8:94:88:d7:e9: 62:c6:0d:05:0b:8b:74:de:23:6f:8e:97:8d:a6:62: 97:90:3f:81:f8:e2:ef:1f:97:93:c0:c0:c7:b7:a4: ce:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:40:F8:FD:4B:3C:C7:C5:02:6B:78:2D:E8:D7:19:57:63:FC:86:50 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f26b7cb2-287e-42bd-b79f-1e3b4f46df77.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.63.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0d:b2:a3:ea:b1:c0:d7:75:3b:df:4d:af:c0:c0:6f:4b:38:fd: 2a:21:e2:5b:e2:cf:48:dc:4e:ed:a0:a3:e9:a4:e5:c6:3d:8f: cf:66:3f:8f:39:c6:83:98:c3:1c:2a:6f:b3:d3:a4:21:1f:9f: 8e:df:14:9b:7f:dc:bc:aa:2d:a6:8e:cc:be:4c:ee:05:d8:63: 12:48:a9:a7:83:d7:9d:f7:a5:df:90:49:e0:64:cd:9f:df:58: 05:d9:2f:47:81:60:e9:b3:cd:cc:44:d3:b0:f2:29:f5:cf:b0: 7e:1d:e4:92:4d:55:51:b8:ce:97:cd:a2:a7:da:32:7e:ae:ec: a8:e4:8d:10:36:80:a4:d7:c1:81:49:83:c1:b3:53:dc:9e:18: c8:2a:2c:ed:dd:59:e3:10:ae:66:bf:d9:e9:ff:54:5b:74:87: 53:51:ee:bc:6e:6b:29:49:79:4e:c2:06:ed:0d:da:97:8f:df: de:ea:d5:6f:31:78:03:79:33:ac:9b:f7:60:c1:4a:85:07:e1: a4:02:1c:39:98:c4:21:91:1d:b5:26:3f:c6:9e:87:35:36:c1: 3e:d1:d4:82:1c:cc:5b:b2:ee:f5:96:cf:55:a5:3f:09:59:e3: e2:98:96:70:40:5b:0b:62:e6:cb:f8:24:a9:b9:21:83:e7:77: 04:da:08:ff -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULK9E9kcR5Wql+yjVDNjVwEnhqC0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTI5MDAwMDAwWhcNMjUwMzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZDM1YzI4NjgwZjJhMmM2YWEzMjcxNWQ0OWQ5N2FlOTYy OWM2MTM0NDYyNWRkY2NhMzkzZGFlOGNiZWI3NTU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZkr2yaKPXVW6oGW5V3y2D/ZI8DGDhqQmsSf4vHJAikgXx q2/OYxzKT0uDcMW+7svb0pCZ0Fd+zFJKvArUNa4+bbeDUflnVM/bajkpAVC7xVlo r89IoMqrIytHD8prvNcHnHM0TSW/YyrFGb6rP9KJl/rzVC7E0GY8vOvgvPGF46tQ BmjMRokoa4+yffbiDRsPzmdOcGQnPDQuk6J4n0Sc+zgXMbe9prUCyLu6nTTHpcyv 5uP5cpM4cg2/rfSWB6FbwGsWk+fBXCzOrYbThMsMq0S5llNhl3/ICPfIlIjX6WLG DQULi3TeI2+Ol42mYpeQP4H44u8fl5PAwMe3pM5ZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU3kD4/Us8x8UCa3gt6NcZV2P8hlAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyNmI3Y2IyLTI4N2UtNDJiZC1iNzlmLTFlM2I0ZjQ2ZGY3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDHPzANBgkqhkiG9w0BAQsFAAOCAQEADbKj6rHA13U7302vwMBvSzj9KiHi W+LPSNxO7aCj6aTlxj2Pz2Y/jznGg5jDHCpvs9OkIR+fjt8Um3/cvKotpo7Mvkzu BdhjEkipp4PXnfel35BJ4GTNn99YBdkvR4Fg6bPNzETTsPIp9c+wfh3kkk1VUbjO l82ip9oyfq7sqOSNEDaApNfBgUmDwbNT3J4YyCos7d1Z4xCuZr/Z6f9UW3SHU1Hu vG5rKUl5TsIG7Q3al4/f3urVbzF4A3kzrJv3YMFKhQfhpAIcOZjEIZEdtSY/xp6H NTbBPtHUghzMW7Lu9ZbPVaU/CVnj4piWcEBbC2Lmy/gkqbkhg+d3BNoI/w== -----END CERTIFICATE-----Generated at Sun Feb 16 15:29:01 2025 by rpki-client